summaryrefslogtreecommitdiffstats
path: root/application/config/config.php
AgeCommit message (Collapse)AuthorFilesLines
2014-01-15CI_URI changes related to the 'permitted_uri_chars' settingAndrey Andreev1-3/+6
- Initialize and cache the value in the class constructor instead of searching for it every time - Removed the preg_quote() call from _filter_uri() to allow more fine-tuning from configuration - Renamed _filter_uri() to filter_uri() - it was public anyway and using it cannot break anything Related: issue #2799
2014-01-08Make newline standardization configurableAndrey Andreev1-0/+14
Added ['standardize_newlines'] Also altered the Session cookie driver, which experienced issues with this feature due to it's HMAC verification failing after the Input class alters newlines in non-encrypted session cookies. Supersedes PR #2470
2013-09-14[ci skip] Remove empty line at application/config/config.php EOFAndrey Andreev1-1/+1
2013-09-14Updated config to include list of valid characters to `sess_cookie_name`brenjt1-2/+2
Added list of valid characters to sess_cookie_name
2013-02-15Fix some stuff from recent pull requestsAndrey Andreev1-2/+5
2013-02-13Added support for changing the default log file extension from .php to ↵Chris Passas1-0/+11
whatever is preferred. example (.log) This is a follow up to this pull request. https://github.com/EllisLab/CodeIgniter/pull/2243
2013-01-24Move db_select() call from CI_DB_driver::initialize() to db_connect()Andrey Andreev1-1/+1
so that it's only called by drivers that need it ('mysql', 'mssql'). As proposed in issue #2187.
2013-01-23Update application/config/config.phpOsamaAbbas1-2/+2
2013-01-01[ci skip] Happy new yearAndrey Andreev1-1/+1
2012-10-31Changed URI auto-detection to try PATH_INFO firstAndrey Andreev1-2/+1
(thanks to @sourcejedi, PR #1326) Up until PHP 5.2.4 (which is our new lowest requirement), there was a bug related to PATH_INFO which made REQUEST_URI a more reliable choice. This is now no longer the case, see https://bugs.php.net/bug.php?id=31892 for more details. Also removed ORIG_PATH_INFO from the suggested alternatives for uri_protocol in application/config/config.php as it will not exist in most of PHP's recent versions and is pointless when you can use PATH_INFO anyway.
2012-10-31Multiple improvements to the URI classAndrey Andreev1-5/+6
(thanks to @sourcejedi, PR #1326 for most of the ideas) - Renamed _detect_uri() and _parse_cli_args() to _parse_request_uri() and _parse_argv() respectively. - Added _parse_query_string() which allows us to detect the URI path from QUERY_STRING much like it is done in _parse_request_uri(). (the above changes also allow for a simpler logic in the case where the *uri_protocol* setting is not set to 'AUTO') - Updated application/config/config.php with a better list of the *uri_protocol* options. - Added _reset_query_string() to aid in re-processing from the QUERY_STRING (utilized in _parse_request_uri() and _parse_query_string()).
2012-10-06Add IPv6 and array() support for *proxy_ips* configurationAndrey Andreev1-6/+10
2012-08-30Added session driver config itemsdchill421-0/+5
Signed-off-by: dchill42 <dchill42@gmail.com>
2012-07-03replaced double quotes with single in $config['cookie_... string valuesDumk01-3/+3
2012-06-15Merge branch 'develop' of github.com:EllisLab/CodeIgniter into developPhil Sturgeon1-7/+7
2012-06-15Merge branch 'feature/minify_output' of ↵Phil Sturgeon1-0/+13
https://github.com/atiredmachine/CodeIgniter into develop
2012-06-14Polish changes from pull #1233 - Session class already has the ↵Andrey Andreev1-3/+3
time_reference setting - 'GMT' is a valid timezone, so nothing needs to be changed in order to work properly (upgrade notes) - Altered some description text
2012-06-13Fixed some stuff in documentation.Iban Eguia1-3/+4
2012-06-12Changed the config parameter. The session's _get_time() function has also ↵Iban Eguia1-2/+2
changed.
2012-06-10Changed the default timezone to local and explained in the config file.Iban Eguia1-2/+3
2012-03-27Fixed typo.Iban Eguia1-1/+1
2012-03-27Changed Date helper to return time() based on the timezone parameter.Iban Eguia1-9/+7
2012-03-26Clear some spaces and fix some inconsistencies in application/ php filesAndrey Andreev1-3/+3
2012-03-18add support for httponly cookiesfreewil1-0/+2
2012-03-09Bumped CodeIgniter's PHP requirement to 5.2.4.Phil Sturgeon1-1/+1
Yes I know PHP 5.4 just came out, and yes I know PHP 5.3 has lovely features, but there are plenty of corporate systems running on CodeIgniter and PHP 5.3 still is not widely supported enough. CodeIgniter is great for distributed applications, and this is the highest we can reasonably go without breaking support. PHP 5.3 will most likely happen in another year or so. Fingers crossed on that one anyway...
2012-01-25Rudimentary minifying of output.Thor (atiredmachine)1-0/+13
2012-01-08Merge pull request #850 from RS71/developPhil Sturgeon1-0/+2
CSRF optional token regeneration
2012-01-02Updating copyright date to 2012Greg Aker1-1/+1
2011-12-31Update application/config/config.phpRS711-0/+2
2011-10-27Added links to the user guide for Encryption class and Session class.Kyle Ridolfo1-0/+3
2011-10-21fixing typo in attribution blockDerek Jones1-1/+1
2011-10-20adding new license file (OSL 3.0) and updating readme to ReSTDerek Jones1-0/+25
added notice of license to all source files. OSL to all except the few files we ship inside of the application folder, those are AFL. Updated license in user guide. incrementing next dev version to 3.0 due to licensing change
2011-08-28always use charset config itemfreewil1-0/+2
2011-08-25Merge remote-tracking branch 'alexbilbie/csrf-override' into feature/csrf-verifyEric Barnes1-0/+2
Conflicts: system/core/Security.php
2011-08-21added ability to log certain error types, not all under a thresholdNithin1-0/+4
2011-08-21Added new config parameter "csrf_exclude_uris" which allows for URIs to be ↵Alex Bilbie1-0/+2
whitelisted from CSRF verification. Fixes #149
2011-07-02backed out 648b42a75739, which was a NON-trivial whitespace commit. It ↵Derek Jones1-20/+20
broke the Typography class's string replacements, for instance
2011-04-25Fixed double-space typo.Razican1-20/+20
2011-02-16Merged CodeIgniter Core changes and integrated rob1's secure cookie change ↵Phil Sturgeon1-17/+30
into my secure cookie change.
2011-02-11Adding config option to require 'secure' setting for all cookies- requires ↵Robin Sowell1-0/+2
https.
2011-01-17Accidentally left csrf to turned on in last commitEric Barnes1-1/+1
2011-01-17Added access scope to security library and added config options for csrf ↵Eric Barnes1-2/+8
protection
2011-01-12Changed instructions for location of log path. Fixes #305Eric Barnes1-1/+1
2010-12-27Implemented GET string support from Dan Horrigan and modified it slightly. ↵Phil Sturgeon1-18/+21
Also tweaked his regex_match changes.
2010-12-15<kbd>['base_url']</kbd> is now empty by default and will guess what it ↵Phil Sturgeon1-17/+20
should be.
2010-12-15Added full Query String and $_GET array support. This is enabled by ↵Dan Horrigan1-0/+4
default. Added a seperate config option to enable/disable the $_GET array.
2010-10-07Automated merge with https://bitbucket.org/barrymieny/codeigniterDerek Jones1-2/+2
2010-10-07Fixed CSRF comments to avoid confusion.Shane Pearson1-2/+2
2010-10-04Cleanup of stray spaces and tabsBarry Mieny1-6/+6
2010-09-27added sess_expire_on_close to config file, corrected comment block for ↵Derek Jones1-5/+12
session config vars. Fixes #149